Okta Integration Guide Overview
Okta is an enterprise identity management and single sign-on service that integrates with applications in the cloud, on-premises, or on a mobile device. This documentation describes how to configure a single sign-on partnership between Okta as the Identity Provider (IdP) and the Single Sign-On Service (SSO) for Pivotal Cloud Foundry as the Service Provider (SP).
SSO supports service provider-initiated authentication flow and single logout. It does not support identity provider-initiated authentication flow. All SSO communication takes place over SSL.
To integrate Okta with Pivotal Cloud Foundry (PCF), you need:
- PCF, v1.7.0 or later.
- Single Sign-On, v1.1.0 or later.
- Okta, v2016.07 or later.
- A user with Application Admin privileges.
Note: To configure SAML, you must have the Single Sign-On service broker installed on your PCF deployment. You need to create a plan, grant any plan administrators, and specify any organizations this plan should be the authentication authority for. For help configuring plans, see the Manage Service Plans topic.
Configuring Okta with SSO
Complete both steps below to integrate your deployment with Okta and SSO.